Vulnerability Description
Buffer overflow in Webalizer 2.01-06, when configured to use reverse DNS lookups, allows remote attackers to execute arbitrary code by connecting to the monitored web server from an IP address that resolves to a long hostname.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bradford Barrett | Webalizer | 2.0.1.6 |
References
- http://marc.info/?l=bugtraq&m=101888467527673&w=2
- http://www.kb.cert.org/vuls/id/582923US Government Resource
- http://www.mrunix.net/webalizer/news.htmlVendor Advisory
- http://www.securityfocus.com/bid/4504
- https://exchange.xforce.ibmcloud.com/vulnerabilities/8837
- http://marc.info/?l=bugtraq&m=101888467527673&w=2
- http://www.kb.cert.org/vuls/id/582923US Government Resource
- http://www.mrunix.net/webalizer/news.htmlVendor Advisory
- http://www.securityfocus.com/bid/4504
- https://exchange.xforce.ibmcloud.com/vulnerabilities/8837
FAQ
What is CVE-2002-0180?
CVE-2002-0180 is a vulnerability with a CVSS score of 7.5 (HIGH). Buffer overflow in Webalizer 2.01-06, when configured to use reverse DNS lookups, allows remote attackers to execute arbitrary code by connecting to the monitored web server from an IP address that re...
How severe is CVE-2002-0180?
CVE-2002-0180 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2002-0180?
Check the references section above for vendor advisories and patch information. Affected products include: Bradford Barrett Webalizer.